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REMARKS 

Initially, Applicants would like to express thanks to the Examiner for the courtesies 
extended during the recent interview held on February 9, 2005. The amendments and remarks 
made herein are consistent with the discussions and proposals made during the interview. 

In the last Office Action, mailed December 16, 2004, claims 1-60 were considered and 
rejected under 35 U.S.C. § 103(a) as being unpatentable over Bcllwood (U.S. Patent No. 
6,584,567) in view of Stallings ("Cryptography and Network Security") 1 . 

By this paper, each of the independent claims 1,14, 27, 35 and 48 have been amended to 
more clearly and distinctly claim embodiments of the invention which are distinguished over the 
art of record. 

As discussed during the interview, the present invention is generally directed to 
embodiments for negotiating a secure end-to-end connection between a client system and a 
server system, through a proxy system, and that includes first establishing a secure connection 
between the client and proxy systems in which at least the client is authenticated to the proxy 
system. The embodiments also include the proxy receiving a request from the client system for a 
secure end-to-end connection with the server system after first authenticating the client. The 
embodiments also include the proxy forwarding the client system request for a secure end-to-end 
connection to the server system and downgrading the secure connection between the client 
system and the proxy system to be insecure after the secure end-to-end connection is established 
between the client and proxy. By doing this, the secure end-to-end connection is encapsulated 
within the insecure client-proxy connection, as discussed, and such that the proxy server does not 

1 Although the prior art status of the cited an is not being challenged at this time, Applicants reserve the right to 
challenge the prior art status of the cited art at any appropriate time, should ii arise. Accordingly, any ar E uments and 
amendments made herein should not be construed as acquiescing to any prior art status of the cited art. 
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CT crypt or decrypt any data S onl between the client and the serve, The various independent 
claims recite this method and corresponding computer program products (claims 35 and 48) from 
the proxy server perspective (claim 1), the client perspective (claim 14) and the overall system 

perspective (claim 27). 

As further discussed during the interview, the cited art fails to anticipate or make obvious 
any method, as recited above, that includes 'downgrading the secure connection between the 
client system and the proxy system to be insecure only after first establishing the secure end-to- 
end connection between the client and the proxy,' particularly in combination with the other 
recited claim elements. In fact, Bellwood fails to suggest downgrading the client/proxy secure 
connection at all. Instead, Bellwood explicitly discloses the opposite by stating that "the first 
secure session is maintained between the client and the proxy". (Col. 2, 11.62-63). 

Stallings also fails to disclose or suggest that a secure communication between a client 
and proxy is downgraded to an insecure connection, but only after first establishing a secure end- 
to-end connection between the client and the server. 

The cited art also fails to disclose or suggest that prior to establishing the secure end-to- 
end connection between the client and the server that the client is authenticated to the proxy. 
Instead, with regard to authentication involving the proxy, Bellwood only addresses 
authenticating the proxy to the client, so that the client can feel good about divulging the master 
secret. (Col. 5, 11. 20-45). Bellwood dien appears to allow the secure end-to-end connection to 
be established between the client and server without any client authentication to the proxy (let 
alone prior to establishing the secure connection, as claimed). Stallings also does not appear to 
suggest or disclose authenticating the client to the proxy, particularly in combination with the 
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other recited claim elements. Instead, Stalling only appears to authenticate A to B (the 
presumptive server based on how the art was originally cited). 

For at least these reasons, Applicant* respectfully submit that the pending claims arc 
neither anticipated by, nor made obvious by the art of record, either singly or in combination. In 
the event that the Examiner finds remaining impediment to a prompt allowance of this 
application that may be clarified through a telephone interview, the Examiner is requested to 
contact the undersigned attorney. 

Dated this 22 nd day of February, 2004. 

Respectfully submitted, 





ICKD. NYDEGGER 
Registration No. 28,651 
JENS C JENKINS 
Registration No. 44,803 
Attorneys for Applicant 

Customer No. 47973 
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